Distributed, Stealthy Brute Force Password Guessing Attempts - Slicing and Dicing Data from Recent Incidents
Date: December 2014
Publication: 8th International Conference on Passwords (Passwords14 Norway)
Source 1: http://home.nuug.no/~peter/passwords14/Hansteen_distributed_bruteforce_passwords14.pdf
The Hail Mary Cloud was a widely distributed, low intensity password guessing botnet that targeted Secure Shell (ssh) servers on the public Internet.
The first activity may have been as early as 2005 [Mobin and Paxson (2013)], our first recorded data start in late 2008. Links to full data and extracts are found in this presentation.
We present the basic behavior and algorithms, and point to possible policies for staying safe(r) from similar present or future attacks, as well as some attacks on other services.
PasswordResearch.com Note: Video of presentation available: https://video.adm.ntnu.no/pres/54980b2735b6c
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.